From the article: This is a very significant event since products made by Johnson Controls and its subsidiaries are used throughout the world for HVAC, security, building automation, fire control,...
From the article:
Johnson Controls International has suffered what is described as a massive ransomware attack that encrypted many of the company devices, including VMware ESXi servers, impacting the company’s and its subsidiaries’ operations.
Johnson Controls is a multinational conglomerate that develops and manufactures industrial control systems, security equipment, air conditioners, and fire safety equipment.
This is a very significant event since products made by Johnson Controls and its subsidiaries are used throughout the world for HVAC, security, building automation, fire control, and other critical systems, as well as industrial controls. The ransomware gang "Dark Angels" claims to have exfiltrated 27 TB of company data. The attack has distinctive features including encryption at the VMWare ESXi-level of both Windows and Linux virtual machines, rendering significant portions of the company's data infrastructure and control systems environments inaccessible.
The United States Department of Homeland Security is also investigating whether detailed U.S. Federal building plans were included in the data breach. Johnson Controls has not commented publicly on whether customer data or systems may be affected, except through its mandatory Securities and Exchange Commission 8-K disclosure.
Wow this could be pretty ridiculous in scale in terms of impact depending on what data they got or how much access they got etc. The response to this in terms of transparency and follow-up from...
Wow this could be pretty ridiculous in scale in terms of impact depending on what data they got or how much access they got etc.
The response to this in terms of transparency and follow-up from the government investigation of finding those behind this might be interesting, depending on what information was compromised.
From the article:
This is a very significant event since products made by Johnson Controls and its subsidiaries are used throughout the world for HVAC, security, building automation, fire control, and other critical systems, as well as industrial controls. The ransomware gang "Dark Angels" claims to have exfiltrated 27 TB of company data. The attack has distinctive features including encryption at the VMWare ESXi-level of both Windows and Linux virtual machines, rendering significant portions of the company's data infrastructure and control systems environments inaccessible.
The United States Department of Homeland Security is also investigating whether detailed U.S. Federal building plans were included in the data breach. Johnson Controls has not commented publicly on whether customer data or systems may be affected, except through its mandatory Securities and Exchange Commission 8-K disclosure.
Wow this could be pretty ridiculous in scale in terms of impact depending on what data they got or how much access they got etc.
The response to this in terms of transparency and follow-up from the government investigation of finding those behind this might be interesting, depending on what information was compromised.